You are right Alex but now indeed I am IRQL PASSIVE_LEVEL I checked, so IRQL is not the reason. Here is my dump:
Use !analyze -v to get detailed debugging information.
BugCheck F7, {fffff98002d9a4b0, f8800125f5af, ffff077ffeda0a50, 0}
Probably caused by : Florin64.sys ( Florin64!__GSHandlerCheck+13 )
Followup: MachineOwner
nt!RtlpBreakWithStatusInstruction:
fffff800`01688490 cc int 3
31: kd> !analyze -v
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
DRIVER_OVERRAN_STACK_BUFFER (f7)
A driver has overrun a stack-based buffer. This overrun could potentially
allow a malicious user to gain control of this machine.
DESCRIPTION
A driver overran a stack-based buffer (or local variable) in a way that would
have overwritten the function’s return address and jumped back to an arbitrary
address when the function returned. This is the classic “buffer overrun”
hacking attack and the system has been brought down to prevent a malicious user
from gaining complete control of it.
Do a kb to get a stack backtrace – the last routine on the stack before the
buffer overrun handlers and bugcheck call is the one that overran its local
variable(s).
Arguments:
Arg1: fffff98002d9a4b0, Actual security check cookie from the stack
Arg2: 0000f8800125f5af, Expected security check cookie
Arg3: ffff077ffeda0a50, Complement of the expected security check cookie
Arg4: 0000000000000000, zero
Debugging Details:
GSFAILURE_FUNCTION: Florin64!__GSHandlerCheck
GSFAILURE_MISSING_ESTABLISHER_FRAME: TRUE
GSFAILURE_MODULE_COOKIE: 0000f8800125f5af Florin64!__security_cookie [fffff8800125f100]
GSFAILURE_FRAME_COOKIE: ffffffffffffffff
SECURITY_COOKIE: Expected 0000f8800125f5af found fffff98002d9a4b0
GSFAILURE_ANALYSIS_TEXT: !gs output:
Establisher Frame not found: suspect corruption
Corruption occurred in Florin64!__GSHandlerCheck or one of its callers
Analyzing __report_gsfailure frame (5)…
LEA usage: Function @0xFFFFF8800125C7C8-0xFFFFF8800125C7DB is NOT using LEA
Module canary at 0xFFFFF8800125F100 (Florin64!__security_cookie): 0xF8800125F5AF
Complement at 0xFFFFF8800125F108: 0xFFFF077FFEDA0A50 (matches OK)
Couldn’t find Canary! Function is likely not using GS or dont know how to find the canary
Stack buffer overrun analysis completed successfully.
BUGCHECK_STR: STACK_BUFFER_OVERRUN
DEFAULT_BUCKET_ID: STACK_BUFFER_OVERRUN
PROCESS_NAME: System
CURRENT_IRQL: 2
STACK_TEXT:
fffff88002d98ad8 fffff800
01777d92 : fffff98002d9a4b0 fffffa83
02118680 0000000000000065 fffff800
016cc178 : nt!RtlpBreakWithStatusInstruction
fffff88002d98ae0 fffff800
01778b7e : ffff077f00000003 00000000
00000000 fffff800016cc9d0 00000000
000000f7 : nt!KiBugCheckDebugBreak+0x12
fffff88002d98b40 fffff800
01690744 : fffff8a0000dc948 ffffffff
ffffffff 0000000000001000 fffff800
01c03f02 : nt!KeBugCheck2+0x71e
fffff88002d99210 fffff880
0125c72e : 00000000000000f7 fffff980
02d9a4b0 0000f8800125f5af ffff077f
feda0a50 : nt!KeBugCheckEx+0x104
fffff88002d99250 fffff880
0125c7db : fffff88002d99728 fffff880
02d99720 fffff88002d99a00 fffff800
016bc2a0 : Florin64!__report_gsfailure+0x26 [d:\5359\minkernel\tools\gs_support\kmode\gs_report.c @ 46]
fffff88002d99290 fffff800
016bbf6d : fffff800018a6aa0 fffff800
017d43fc fffff80001610000 fffff880
02d9a1a8 : Florin64!__GSHandlerCheck+0x13 [d:\5359\minkernel\crts\crtw32\misc\amd64\gshandler.c @ 93]
fffff88002d992c0 fffff800
016bad45 : fffff8800125e4c0 fffff880
02d99338 fffff88002d9a1a8 fffff880
01256000 : nt!RtlpExecuteHandlerForException+0xd
fffff88002d992f0 fffff800
016cbdc1 : fffff88002d9a1a8 fffff880
02d99a00 fffff88000000000 00000000
00000000 : nt!RtlDispatchException+0x415
fffff88002d999d0 fffff800
0168fcc2 : fffff88002d9a1a8 00000000
00000000 fffff88002d9a250 fffff880
02d9a530 : nt!KiDispatchException+0x135
fffff88002d9a070 fffff800
0168e83a : 0000000000000001 00000000
00000000 fffff8a001695600 00000000
00000000 : nt!KiExceptionDispatch+0xc2
fffff88002d9a250 fffff800
019c830a : fffffa8302973a10 fffff880
02d9a530 0000000000000000 00000000
00000000 : nt!KiPageFault+0x23a
fffff88002d9a3e0 fffff800
018fee42 : fffffa8302973a10 00000000
00000002 0000000000000000 fffffa83
02973a10 : nt! ?? ::NNGAKEGL::string'+0x1cc5f fffff880
02d9a460 fffff88001261622 : 00000000
00000001 fffffa8302973a10 fffff880
0125e2a4 fffff8800125e2a4 : nt!IoGetDevicePropertyData+0x7a fffff880
02d9a4b0 ed00000000800103 : 01000000
00000000 0000030200000000 0000000b
0000000b 00000000ffffffff : Florin64!FlorinAddDevice+0x612 [d:\work\pcie\florin\3.0\sys\florin.c @ 525] fffff880
02d9a5a0 0100000000000000 : 00000302
00000000 0000000b0000000b 00000000
ffffffff fffff88001261010 : 0xed000000
00800103
fffff88002d9a5a8 00000302
00000000 : 0000000b0000000b 00000000
ffffffff fffff88001261010 fffffa83
02973740 : 0x100000000000000 fffff880
02d9a5b0 0000000b0000000b : 00000000
ffffffff fffff88001261010 fffffa83
02973740 fffff88001261010 : 0x302
00000000
fffff88002d9a5b8 00000000
ffffffff : fffff88001261010 fffffa83
02973740 fffff88001261010 fffff800
01a713f5 : 0xb0000000b fffff880
02d9a5c0 fffff8800126100f : fffffa83
02973740 fffff88001261010 fffff800
01a713f5 0000000000000001 : 0xffffffff fffff880
02d9a5c8 fffffa8302973740 : fffff880
01261010 fffff80001a713f5 00000000
00000001 fffffa830304ed80 : Florin64!__PchSym_ <perf> (Florin64+0xb00f)<br>fffff880
02d9a5d0 fffff8800126100f : fffff800
01a713f5 0000000000000001 fffffa83
0304ed80 0000000000000002 : 0xfffffa83
02973740
fffff88002d9a5d8 fffff800
01a713f5 : 0000000000000001 fffffa83
0304ed80 0000000000000002 fffffa83
02973740 : Florin64!_PchSym (Florin64+0xb00f)
fffff88002d9a5e0 fffff800
01a78921 : fffffa8302973740 fffffa83
02973740 0000000000000000 00000000
00000000 : nt!PnpCallAddDevice+0xd5
fffff88002d9a660 fffff800
01a79eb2 : fffffa8302153850 fffffa83
02973740 0000000000000002 fffffa83
021670f0 : nt!PipCallDriverAddDevice+0x661
fffff88002d9a810 fffff800
01a7a34c : fffff80001889d00 00000000
00000000 0000000000000000 00000000
00000000 : nt!PipProcessDevNodeTree+0x2b2
fffff88002d9aa80 fffff800
01789b72 : 0000000100000003 00000000
00000000 0000000032706e50 00000000
00000000 : nt!PiProcessStartSystemDevices+0x7c
fffff88002d9aad0 fffff800
0169aa21 : fffff80001789870 fffff800
01986f01 fffffa8302118600 00000000
00000000 : nt!PnpDeviceActionWorker+0x302
fffff88002d9ab70 fffff800
0192dcce : 0f12000a424b4e4c fffffa83
02118680 0000000000000080 fffffa83
0204db30 : nt!ExpWorkerThread+0x111
fffff88002d9ac00 fffff800
01681fe6 : fffff88002440180 fffffa83
02118680 fffff8800244b6c0 010a001c
ffff0c04 : nt!PspSystemThreadStartup+0x5a
fffff88002d9ac40 00000000
00000000 : fffff88002d9b000 fffff880
02d95000 fffff88002d9a3f0 00000000
00000000 : nt!KxStartSystemThread+0x16
STACK_COMMAND: kb
FOLLOWUP_IP:
Florin64!__GSHandlerCheck+13 [d:\5359\minkernel\crts\crtw32\misc\amd64\gshandler.c @ 93]
fffff880`0125c7db b801000000 mov eax,1
FAULTING_SOURCE_CODE:
No source found for ‘d:\5359\minkernel\crts\crtw32\misc\amd64\gshandler.c’
SYMBOL_STACK_INDEX: 5
SYMBOL_NAME: Florin64! GSHandlerCheck+13
FOLLOWUP_NAME: MachineOwner
MODULE_NAME: Florin64
IMAGE_NAME: Florin64.sys
DEBUG_FLR_IMAGE_TIMESTAMP: 4f79df0d
FAILURE_BUCKET_ID: X64_STACK_BUFFER_OVERRUN_MISMATCH_GSCOOKIE_Florin64! GSHandlerCheck+13
BUCKET_ID: X64_STACK_BUFFER_OVERRUN_MISMATCH_GSCOOKIE_Florin64!__GSHandlerCheck+13
Followup: MachineOwner
---------